Abstract
AbstractModern software architectures are becoming increasingly complex and interdependent. The days of exclusive in-house software development by companies are over. A key force contributing to this shift is the abundant use of open source frameworks, components, and libraries in software development. Over 90% of all software products include open source components. Being efficient, robust, and affordable, they often cover the non-differentiating product requirements companies have. However, the uncontrolled use of open source software in products comes with legal, engineering, and business risks stemming from incorrect software licensing, copyright issues, and supply chain vulnerabilities. While recognized by a handful of companies, this topic remains largely ignored by the industry and little studied by the academia. To address this relevant and novel topic, we undertook a 3-year research project into open source governance in companies, which resulted in a doctoral dissertation. The key results of our work include a theory of industry best practices, where we captured how more than 20 experts from 15 companies worldwide govern their corporate use of open source software. Acknowledging the broad industry relevance of our topic, we developed a handbook for open source governance that enabled practitioners from various domains to apply our findings in their companies. We conducted three evaluation case studies, where more than 40 employees at three Germany-based multinational companies applied our proposed best practices. This chapter presents the highlights of building and implementing the open source governance handbook.
Funder
Gesellschaft für Informatik e.V.
Publisher
Springer International Publishing
Reference24 articles.
1. Ruffin, C., Ebert, C.: Using open source software in product development: a primer. IEEE Softw. 21(1), 82–86 (2004)
2. Lin, L.C.-H., Shen, N.: Copyleft referring to GPL-3.0 was cited as a defense method in Chinese intellectual property court in Beijing. Int. Free Open Source Softw. Law Rev. 10(1), 1–7, (2019)
3. German, D.M., Hassan, A.E.: License integration patterns: addressing license mismatches in component-based development. In Proceedings of the 31st International Conference on Software Engineering, pp. 188–198. IEEE Computer Society, Silver Spring (2009)
4. Merilinna, J., Matinlassi, M.: Assessing the role of open source software in the European secondary software sector: a voice from industry. In: 1st International Conference on Open Source Systems (2005)
5. Chen, W., Li, J., Ma, J., Conradi, R., Ji, J., Liu, C.: An empirical study on software development with open source components in the Chinese software industry. Softw. Process Improv. Practice 13(1), 89–100 (2008)
Cited by
1 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献